Basic 7

Forging ahead.

Looks like Sam uses the UNIX cal command to display a calendar. Let’s try this new feature out.

Upon passing the year number, we are getting this output. Now this seems a direct output of the cal command. Let’s see if we can escape this and pass on our own commands. Let’s pass on the following as input:

;ls

Nice! We now know which file contains the password. Let’s see if we can access it.

Done!